Tag Archives: government

Government minister embraces the Dark Side.

Image credit: Paul J Everett

It appears that Francis Maude, the Minister for the Cabinet Office in the United Kingdom government is getting a little frustrated with technological solutions available to him in Whitehall. So much so that he has “installed his own wi-fi“. In Whitehall. In his office. In government. Nothing to worry about there then…

The news is particularly ironic, coming on the same day that Mr. Maude’s department issues their press release relating to the “Radical overhaul for Whitehall security“. You don’t say!
Continue reading

The spooks, the backdoors, reality and the future

nsa_logo_2
nsa_logo_2

One of these images conceals some extra information, a prize to the first person to tweet me what I hid @rik_ferguson

The NSA and the extent of its interest in cryptographic systems has long been discussed in security and cryptography circles and opinions have already been published regarding unprecedented major breakthroughs in cryptanalytic technologies at The Agency.
Continue reading

How do I keep the Spooks out of my inbox?

image courtesy of khrawlings under creative commons

Note: The answer to this question is FREE and it’s at the end of this post.

Digitally signing an email is a way of assuring the recipient that the content, while not encrypted, has not been modified in transit, it’s effectively a personal cryptographic certification of the content and attributes of the mail. If the “From:” address is re-written, for example a signed mail is sent to a distribution list and then forwarded on to each of the members of the list with a new “From:” address (usually the address of the list) then the contents will have been modified and the signature will no longer match. The same is true of any content within the mail, if it is intercepted and modified in transit, then the end-user should receive a warning that the signature no longer matches. In a post-PRISM world though, more people are beginning to pay attention to how they can secure their email communication completely from prying eyes. Simply signing will not achieve this, as mails not encrypted – merely “certified” – are still sent in the clear. Full-blown mail encryption is the answer, as Edward Snowden asserted in his recent Q&A, “Encryption works. Properly implemented strong crypto systems are one of the few things that you can rely on“.
Continue reading